Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
None
Description
Several NiFi extension components depend on version 1 of the AWS SDK for various service operations. CVE-2022-31159 impacts the S3 TransferManager in AWS SDK versions prior to 1.2.260.
Although NiFi components do not include direct usage of the S3 TransferManager, library references should be upgraded.
Attachments
Issue Links
- links to